Secure Collaborative Development of Cloud Application Deployment Models

Yussupov, Vladimir; Falkenthal, Michael; Kopp, Oliver; Leymann, Frank; Zimmermann, Michael

Home // SECURWARE 2018, The Twelfth International Conference on Emerging Security Information, Systems and Technologies // View article

Secure Collaborative Development of Cloud Application Deployment Models

Authors:
Vladimir Yussupov
Michael Falkenthal
Oliver Kopp
Frank Leymann
Michael Zimmermann

Keywords: Collaboration; Security Policy; Confidentiality; Integrity; Deployment Automation; TOSCA

Abstract:
Industrial processes can benefit considerably from utilizing cloud applications that combine cross-domain knowledge from multiple involved partners. Often, development of such applications is not centralized, e.g., due to outsourcing, and lacks trust among involved participants. In addition, manual deployment of resulting applications is inefficient and error-prone. While deployment can be automated using existing modeling approaches, the issues of data confidentiality and integrity in exchanged deployment models have to be addressed. In this paper, we tackle security challenges posed by collaborative cloud application development. We present a policy-based approach for modeling of security requirements in deployment models. Furthermore, we propose a method of peer-to-peer model exchange that allows enforcing modeled requirements. To validate our approach we apply it to Topology and Orchestration Specification for Cloud Applications (TOSCA), an existing cloud applications modeling standard, and describe the prototypical implementation of our concepts in OpenTOSCA, an open source toolchain supporting TOSCA. Usage of the resulting prototype in the context of a described model exchange process allows modeling and enforcement of security requirements in collaborative development of deployment models. We then conclude the paper with a discussion on limitations of the approach and future research directions.

Pages: 48 to 57

Copyright: Copyright (c) IARIA, 2018

Publication date: September 16, 2018

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-661-3

Location: Venice, Italy

Dates: from September 16, 2018 to September 20, 2018